ramnit | d156f6d19e174863a95090c0f8cb00300911d4802a0cc68472209054693d89fd | Triage

Submit
Reports

Overview

overview

Static

static

1

6efdd75a13...8.html

windows7-x64

6efdd75a13...8.html

windows10-2004-x64

1

Sharing

General

Target

6efdd75a13360a2636f9ae9d9182fb03_JaffaCakes118
Size

350KB
Sample

240524-sy2csaaf7w
MD5

6efdd75a13360a2636f9ae9d9182fb03
SHA1

f84b9294c00f7809b503adf7d5dd1f6102868f77
SHA256

d156f6d19e174863a95090c0f8cb00300911d4802a0cc68472209054693d89fd
SHA512

36db3bcb67abf015cea2e4bc6d608dba20f75913262a6c32d710d738b82b438416be818ad2d4bb674fa8f03054106c2a67055aa751601d852ce2ef1c84200adf
SSDEEP

6144:asMYod+X3oI+YS1UsMYod+X3oI+Y5sMYod+X3oI+YQ:45d+X3F5d+X3f5d+X3+

Score

10^/10

ramnit banker spyware stealer trojan upx worm

Static task

static1

Behavioral task

behavioral1

Sample

6efdd75a13360a2636f9ae9d9182fb03_JaffaCakes118.html

Resource

win7-20240221-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6efdd75a13360a2636f9ae9d9182fb03_JaffaCakes118.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6efdd75a13360a2636f9ae9d9182fb03_JaffaCakes118
- Size
  
  350KB
- MD5
  
  6efdd75a13360a2636f9ae9d9182fb03
- SHA1
  
  f84b9294c00f7809b503adf7d5dd1f6102868f77
- SHA256
  
  d156f6d19e174863a95090c0f8cb00300911d4802a0cc68472209054693d89fd
- SHA512
  
  36db3bcb67abf015cea2e4bc6d608dba20f75913262a6c32d710d738b82b438416be818ad2d4bb674fa8f03054106c2a67055aa751601d852ce2ef1c84200adf
- SSDEEP
  
  6144:asMYod+X3oI+YS1UsMYod+X3oI+Y5sMYod+X3oI+YQ:45d+X3F5d+X3f5d+X3+
Score

10^/10

ramnit banker spyware stealer trojan upx worm
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

© 2018-2024

Terms | Privacy